jonny-jhnson / PowerParseLinks
PowerShell PE Parser
☆63Updated 11 months ago
Alternatives and similar repositories for PowerParse
Users that are interested in PowerParse are comparing it to the libraries listed below
Sorting:
- a tiny program to consume from ETW providers for research☆48Updated 5 months ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- ☆158Updated last month
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆62Updated 5 months ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 3 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆79Updated 9 months ago
- ☆107Updated 7 months ago
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆41Updated 8 months ago
- Yara Rules for Modern Malware☆77Updated last year
- ☆20Updated last year
- ☆63Updated last week
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆82Updated last year
- A C# based tool for analysing malicious OneNote documents☆113Updated 2 years ago
- Analyse MSI files for vulnerabilities☆131Updated 9 months ago
- ☆39Updated last year
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.☆47Updated 5 months ago
- ☆27Updated 6 months ago
- ☆45Updated last year
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- quASAR: ASAR manipulation made easy☆38Updated 2 years ago
- ☆80Updated 6 months ago
- A collection of tools, scripts and personal research☆128Updated 2 months ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆17Updated 5 months ago
- Living Off the Foreign Land setup scripts☆70Updated 3 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated last year
- BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.☆37Updated 4 months ago
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year